$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/80051317-81e4-416b-892a-affc2e301f81.roa File: 80051317-81e4-416b-892a-affc2e301f81.roa (raw, json) Hash identifier: MMOJJNHkJNmeHKiBFKmO3POWhAPOWNaoDUnT3iB524I= Subject key identifier: 6E:D5:51:C9:FF:64:EE:1A:94:73:79:08:40:18:28:3C:52:D1:05:B3 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 0BB004F3AAE732D6155DC68EBF962C0558DAC5FE Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/80051317-81e4-416b-892a-affc2e301f81.roa Signing time: Wed 27 Aug 2025 00:10:01 +0000 ROA not before: Wed 27 Aug 2025 00:10:01 +0000 ROA not after: Wed 01 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.178.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 09 Sep 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:b0:04:f3:aa:e7:32:d6:15:5d:c6:8e:bf:96:2c:05:58:da:c5:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Aug 27 00:10:01 2025 GMT Not After : Oct 1 23:59:59 2025 GMT Subject: serialNumber=2215718180054e0ba3e279e3761ff229156c82d49b5813b407e42b0947bb8f81, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:6c:00:8f:84:ff:f6:3d:c0:ce:b2:8c:85:ab: fb:4c:78:a9:2a:14:c9:8b:dc:e7:54:37:23:51:17: 2c:22:56:1a:e9:cf:ad:01:6c:24:13:ec:74:ce:84: 86:35:1b:ef:a8:04:23:df:ac:a3:67:39:37:c9:f9: c8:6b:d6:38:f7:6d:1f:fc:65:80:98:8a:9f:60:b5: 06:f6:75:9d:74:91:4e:60:68:35:f8:84:0e:df:3b: 1d:a4:67:a7:5c:70:ee:b5:1a:91:a8:b9:4c:b8:73: e4:55:ce:d3:dc:22:58:ef:6a:77:5a:66:84:84:fa: 87:cf:30:db:7a:c6:76:04:17:27:f2:57:3a:5b:2d: 12:02:81:04:da:d8:e0:f6:8c:84:13:d6:bb:b7:9c: c2:a0:be:96:5f:ca:92:bf:d5:9c:3f:22:37:db:77: d5:90:4c:c2:6b:76:62:f5:81:bf:ec:52:4f:7e:2d: f1:33:da:38:14:0d:4b:1e:a0:aa:46:24:d3:78:9a: 1e:04:6a:e1:2a:79:08:1e:d1:51:38:ae:68:93:e3: 67:55:4e:71:4f:9f:19:b1:d6:d7:c8:ac:11:67:92: b2:d7:d0:cd:55:59:8a:53:dd:6e:5a:df:7c:5e:97: 86:9f:2b:da:d5:83:bb:9d:8c:f5:14:e9:f1:50:8e: b5:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:D5:51:C9:FF:64:EE:1A:94:73:79:08:40:18:28:3C:52:D1:05:B3 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/80051317-81e4-416b-892a-affc2e301f81.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.178.0/23 Signature Algorithm: sha256WithRSAEncryption 0b:f4:92:c1:3e:1f:53:2e:01:4e:b5:35:8e:81:ec:3a:af:15: 8e:7f:97:c5:9c:ce:4b:c9:24:b2:8e:b7:d4:de:87:b3:5c:4a: d9:dd:34:88:0c:cc:1a:77:6f:63:f9:4e:8b:cf:31:fd:dc:e0: 12:43:bf:52:93:7a:41:52:f5:fd:40:7e:68:a9:76:40:49:25: 62:75:bd:72:e8:17:8c:df:e0:5a:77:9f:96:04:c1:8c:3e:3f: 11:05:aa:f5:9f:a4:07:90:de:3d:5d:87:fe:50:2e:5b:ce:f7: 4b:7b:10:05:ea:22:0b:76:57:98:4e:40:91:82:68:bb:cf:a5: 93:32:e3:03:c0:70:59:bb:fe:4b:ee:30:6a:54:93:55:79:27: a0:04:d0:bf:8c:c8:b2:86:72:88:6b:bf:64:3d:7f:8f:54:67: e1:d9:b2:76:09:7f:7f:bf:7d:cd:5f:6e:84:28:20:4b:f3:80: d8:78:c7:c9:94:49:e9:b3:a9:7b:e3:b0:54:4b:b1:0f:fd:7f: a6:7d:9c:53:61:b0:53:3d:e2:0f:50:7b:72:97:33:9d:73:e8: ac:de:5d:f5:54:61:f9:cc:76:39:48:8b:88:2d:b3:2e:ac:69: 8a:d9:06:9a:79:22:2a:9e:1e:86:af:56:95:29:62:59:e8:3f: b6:9e:19:77 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUC7AE86rnMtYVXcaOv5YsBVjaxf4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwODI3MDAxMDAxWhcNMjUxMDAxMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMjE1NzE4MTgwMDU0ZTBiYTNlMjc5ZTM3NjFmZjIyOTE1 NmM4MmQ0OWI1ODEzYjQwN2U0MmIwOTQ3YmI4ZjgxMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDVbACPhP/2PcDOsoyFq/tMeKkqFMmL3OdUNyNRFywiVhrp z60BbCQT7HTOhIY1G++oBCPfrKNnOTfJ+chr1jj3bR/8ZYCYip9gtQb2dZ10kU5g aDX4hA7fOx2kZ6dccO61GpGouUy4c+RVztPcIljvandaZoSE+ofPMNt6xnYEFyfy VzpbLRICgQTa2OD2jIQT1ru3nMKgvpZfypK/1Zw/Ijfbd9WQTMJrdmL1gb/sUk9+ LfEz2jgUDUseoKpGJNN4mh4EauEqeQge0VE4rmiT42dVTnFPnxmx1tfIrBFnkrLX 0M1VWYpT3W5a33xel4afK9rVg7udjPUU6fFQjrUhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUbtVRyf9k7hqUc3kIQBgoPFLRBbMwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzgwMDUxMzE3LTgxZTQtNDE2Yi04OTJhLWFmZmMyZTMwMWY4MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFM37IwDQYJKoZIhvcNAQELBQADggEBAAv0ksE+H1MuAU61NY6B7DqvFY5/ l8WczkvJJLKOt9Teh7NcStndNIgMzBp3b2P5TovPMf3c4BJDv1KTekFS9f1Afmip dkBJJWJ1vXLoF4zf4Fp3n5YEwYw+PxEFqvWfpAeQ3j1dh/5QLlvO90t7EAXqIgt2 V5hOQJGCaLvPpZMy4wPAcFm7/kvuMGpUk1V5J6AE0L+MyLKGcohrv2Q9f49UZ+HZ snYJf3+/fc1fboQoIEvzgNh4x8mUSemzqXvjsFRLsQ/9f6Z9nFNhsFM94g9Qe3KX M51z6KzeXfVUYfnMdjlIi4gtsy6saYrZBpp5IiqeHoavVpUpYlnoP7aeGXc= -----END CERTIFICATE-----Generated at Sun Sep 7 16:19:14 2025 by rpki-client